$ rpki-client -vvf rpki.apnic.net/member_repository/A913B489/0B3879CAFF9C11E9B035A673C4F9AE02/vIYHvM59W9TtuRjN4bc0W4HmrR0.mft File: vIYHvM59W9TtuRjN4bc0W4HmrR0.mft (raw, json) Hash identifier: yuPITk9xOiOIljK6Ie6c+mUdSYVwgg5TdH8F9rbL2pg= Subject key identifier: 21:F9:EB:81:39:8A:F9:59:36:4D:36:6B:65:0C:40:5C:3B:BD:14:27 Authority key identifier: BC:86:07:BC:CE:7D:5B:D4:ED:B9:18:CD:E1:B7:34:5B:81:E6:AD:1D Certificate issuer: /CN=A913B489/serialNumber=BC8607BCCE7D5BD4EDB918CDE1B7345B81E6AD1D Certificate serial: 0B9C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vIYHvM59W9TtuRjN4bc0W4HmrR0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913B489/0B3879CAFF9C11E9B035A673C4F9AE02/vIYHvM59W9TtuRjN4bc0W4HmrR0.mft Manifest number: 0B96 Signing time: Sat 04 May 2024 19:23:07 +0000 Manifest this update: Sat 04 May 2024 19:23:07 +0000 Manifest next update: Sat 11 May 2024 19:23:07 +0000 Files and hashes: 1: vIYHvM59W9TtuRjN4bc0W4HmrR0.crl (hash: 9wy7u3bDtD9Uh+DFnC0nHj2rZPJX/LDdgS1DGl0zWpI=) 2: 87B023F2FF9E11E998D7BF77C4F9AE02.roa (hash: KBPr0IvTbp4qH1T5XkMfOBWY0xCJEQF1q6Fm1wPX+hw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913B489/0B3879CAFF9C11E9B035A673C4F9AE02/vIYHvM59W9TtuRjN4bc0W4HmrR0.crl rsync://rpki.apnic.net/member_repository/A913B489/0B3879CAFF9C11E9B035A673C4F9AE02/vIYHvM59W9TtuRjN4bc0W4HmrR0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vIYHvM59W9TtuRjN4bc0W4HmrR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 19:23:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2972 (0xb9c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913B489/serialNumber=BC8607BCCE7D5BD4EDB918CDE1B7345B81E6AD1D Validity Not Before: May 4 19:23:07 2024 GMT Not After : May 11 19:23:07 2024 GMT Subject: CN=66368b1b-d9df Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:f5:97:26:f6:56:4e:21:d2:4c:ee:b1:6b:d4: cf:17:8b:ba:9d:e7:07:a4:be:94:32:7d:c4:e7:90: 4d:57:14:46:e6:1b:60:9e:0a:06:e5:99:60:8f:7a: 2b:c9:d4:6e:2e:a9:a5:ea:47:2e:20:a8:94:2d:c6: 08:77:38:71:e7:1c:1f:d4:12:e4:da:a1:63:35:06: 01:5c:e5:01:af:a4:34:ee:0a:58:06:ea:42:58:69: 31:72:aa:66:db:eb:1f:fb:00:1f:c5:bc:e4:d3:41: 83:70:e3:ab:c7:06:f4:70:38:fc:7c:04:9e:5c:11: 3a:65:cb:b5:87:26:b2:47:71:a7:cf:e4:2c:2b:a5: 9e:8a:66:a9:dd:39:bd:2d:3a:30:f8:d2:64:0b:15: 42:8c:ca:ed:81:87:af:20:38:a3:ab:52:1b:28:99: 91:f5:a3:58:36:21:02:dd:59:68:2e:93:22:bf:1c: 4a:73:c2:16:1f:45:8e:be:d1:07:5a:b3:85:6c:8c: aa:0c:d0:26:50:19:22:bf:e8:ce:93:61:10:5e:a2: 54:cf:33:0a:81:72:fc:f8:b1:cc:ac:aa:48:63:06: a4:7e:84:7d:6e:81:ed:70:a2:a5:cf:1d:90:ab:f5: db:c7:14:62:cb:2a:b6:82:c3:b2:bf:cc:4c:3e:9e: 36:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:F9:EB:81:39:8A:F9:59:36:4D:36:6B:65:0C:40:5C:3B:BD:14:27 X509v3 Authority Key Identifier: keyid:BC:86:07:BC:CE:7D:5B:D4:ED:B9:18:CD:E1:B7:34:5B:81:E6:AD:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913B489/0B3879CAFF9C11E9B035A673C4F9AE02/vIYHvM59W9TtuRjN4bc0W4HmrR0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vIYHvM59W9TtuRjN4bc0W4HmrR0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913B489/0B3879CAFF9C11E9B035A673C4F9AE02/vIYHvM59W9TtuRjN4bc0W4HmrR0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:c7:c4:ca:09:e8:32:c0:db:0b:60:cb:ee:70:f2:92:d1:6c: b2:a8:16:eb:78:fc:d6:8b:c3:46:62:d2:43:11:2a:3a:0b:e5: 4b:b7:45:1a:5e:d3:e8:aa:b4:8c:b9:c8:23:b7:a4:e7:1a:93: 9c:e9:9b:9b:81:37:66:d6:6a:0c:e6:f4:3f:ae:df:37:ae:58: 82:e9:72:0d:2f:27:95:77:88:41:b3:6d:46:7b:40:ff:64:a2: 4c:23:0b:2f:22:6b:7c:44:a0:06:aa:a3:70:c3:63:1c:54:82: c0:a7:23:2d:8d:e9:28:19:50:f7:b6:a2:55:72:18:b7:d2:6f: d0:0a:d4:36:26:d2:10:6d:f9:36:c4:b5:fb:fc:80:b1:7c:84: 12:19:bc:f2:8e:ad:a4:b5:9d:ac:32:ff:d8:bc:68:25:cd:1e: d9:4e:80:99:29:54:80:20:c8:b9:2d:5b:da:ff:04:89:fc:88: 04:58:a5:db:93:a1:8f:f5:64:f1:23:ec:46:33:e4:71:19:b2: 5b:5a:d2:4d:0d:08:bf:ca:a1:b2:21:2d:c2:51:42:13:6a:6b: 6e:5e:0f:38:39:f1:eb:7d:38:21:8f:f0:a0:15:1a:11:c8:6a: d7:08:a5:6f:c8:1e:8b:2c:0c:ee:5b:00:07:2d:24:74:43:73: a8:be:ba:0b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC5wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0I0ODkxMTAvBgNVBAUTKEJDODYwN0JDQ0U3RDVCRDRFREI5MThDREUxQjczNDVC ODFFNkFEMUQwHhcNMjQwNTA0MTkyMzA3WhcNMjQwNTExMTkyMzA3WjAYMRYwFAYD VQQDEw02NjM2OGIxYi1kOWRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr/WXJvZWTiHSTO6xa9TPF4u6necHpL6UMn3E55BNVxRG5htgngoG5Zlgj3or ydRuLqml6kcuIKiULcYIdzhx5xwf1BLk2qFjNQYBXOUBr6Q07gpYBupCWGkxcqpm 2+sf+wAfxbzk00GDcOOrxwb0cDj8fASeXBE6Zcu1hyayR3Gnz+QsK6Weimap3Tm9 LTow+NJkCxVCjMrtgYevIDijq1IbKJmR9aNYNiEC3VloLpMivxxKc8IWH0WOvtEH WrOFbIyqDNAmUBkiv+jOk2EQXqJUzzMKgXL8+LHMrKpIYwakfoR9boHtcKKlzx2Q q/XbxxRiyyq2gsOyv8xMPp42GwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCH564E5 ivlZNk02a2UMQFw7vRQnMB8GA1UdIwQYMBaAFLyGB7zOfVvU7bkYzeG3NFuB5q0d MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQjQ4OS8wQjM4NzlDQUZG OUMxMUU5QjAzNUE2NzNDNEY5QUUwMi92SVlIdk01OVc5VHR1UmpONGJjMFc0SG1y UjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZJWUh2TTU5VzlUdHVSak40YmMwVzRIbXJSMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QjQ4OS8wQjM4NzlDQUZGOUMxMUU5QjAzNUE2NzNDNEY5QUUwMi92SVlIdk01OVc5 VHR1UmpONGJjMFc0SG1yUjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQACx8TKCegywNsLYMvucPKS0WyyqBbrePzWi8NGYtJDESo6C+VLt0Ua XtPoqrSMucgjt6TnGpOc6ZubgTdm1moM5vQ/rt83rliC6XINLyeVd4hBs21Ge0D/ ZKJMIwsvImt8RKAGqqNww2McVILApyMtjekoGVD3tqJVchi30m/QCtQ2JtIQbfk2 xLX7/ICxfIQSGbzyjq2ktZ2sMv/YvGglzR7ZToCZKVSAIMi5LVva/wSJ/IgEWKXb k6GP9WTxI+xGM+RxGbJbWtJNDQi/yqGyIS3CUUITamtuXg84OfHrfTghj/CgFRoR yGrXCKVvyB6LLAzuWwAHLSR0Q3OovroL -----END CERTIFICATE-----Generated at Sat May 4 20:37:07 2024 by rpki-client on console-fra.rpki-client.org